WannaCrypt Virus Epidemic Stopped by Abracadabra
The security expert with the twitter @MalwareTechBlog stopped the WannaCrypt virus epidemy simply by registering the non-readable domain. As he confessed, “…I was unaware registering the domain would stop the malware until after I registered it, so initially it was accidental”.
The expert discovered a very curious line in the virus code. It orders to quit if the address to the specific domain is successful. The particular name was iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com. Obviously, just a strain letters typed at random. But he just did it – he registered the domain and got thousands of requests from infested computers within minutes. And the virus stopped spreading from the infested machines!
Hackers must have been very smug about their resourcefulness. You see, the condition command or if-then command is the basic command of any coding language. It sets the conditions of some action. For instance, you have to get all the toy bricks from one box and put them into another. What do you do? You look into the box #1 to see if there are any brick left. If there are some or there’s just one of them, you pick the brick and put it into the box #2 and then repeat the whole thing until the box #1 is empty. The cycle is over. Done. In computers’ language it goes like that: if brick > 1, then relocate it to the box #2, if brick = 0, then stop.
WannaCrypt has to address one and the same domain with the non-existing name to see if it can spread wider. The respond that has been coming back until recently was NO, there’s no such domain. And the virus went on gallivanting. And then oops! The domain iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com came into existence! The virus stopped.
Thus, setting up a target sinkhole for studying the virus behavior, MalwareTechBlog stopped the epidemic!
It didn’t take hours of typing in front of black displays with myriads of green lines running. Until the domain is revoked, the WannaCrypt is completely harmless! That’s what I call Bruce Willis style of rescuing the world.
This is the link to the animated world map Wannacry Ransomware Map that shows the scale of the cyber attack. The map shows not every particular computer attacked but rather the scale of it. The data was collected via one of the infested domains the blog took control of. The attack began at one and the same time around the globe and Europe seems to suffer most. USA is relatively OK, but we’ll see, the info is being updated.
What can you do to stay safe in the future? First, remember to update all the patches and updates Microsoft provides. Second, remember to update your antivirus software. Third, regularly back up critical files to the hard drives or other computer with NO internet access.
- Well, if you are tired of battling against all the dangers of Internet, you can easily trade in your computers and smartphones for top cash: Sell used electronics online today!